CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2024/10/02 4:55 p.m.•12 views

CVE-2024-20492 Cisco Expressway Series Privilege Escalation Vulnerability

A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit this vulnerability, the attacker must have Administrator-level...

6CVSS0.00265EPSS

Cisco•added 2024/10/02 4:0 p.m.•12 views

Cisco Expressway Series Privilege Escalation Vulnerability

6CVSS6.5AI score0.00265EPSS

Tenable Nessus•added 2023/07/25 12:0 a.m.•24 views

Cisco NX-OS CLI Command Software Image Signature Verification (CVE-2019-1812)

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital signatures are not...

7.2CVSS6.6AI score0.00066EPSS

Exploits0References3

NVD•added 2023/01/20 7:15 a.m.•10 views

CVE-2023-20045

A vulnerability in the web-based management interface of Cisco Small Business RV160 and RV260 Series VPN Routers could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validati...

7.2CVSS6.2AI score0.00249EPSS

Prion•added 2023/01/20 7:15 a.m.•9 views

Input validation

5.8CVSS7.2AI score0.00249EPSS

Exploits0References1Affected Software4

Cisco•added 2023/01/11 4:0 p.m.•37 views

Cisco Small Business RV160 and RV260 Series VPN Routers Remote Command Execution Vulnerability

4.9CVSS7.3AI score0.00249EPSS

NVD•added 2022/07/06 9:15 p.m.•11 views

CVE-2022-20768

A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint CE and RoomOS Software could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This vulnerability is due to the storage of certain unencrypted credentials...

4.9CVSS0.00214EPSS

Prion•added 2022/07/06 9:15 p.m.•15 views

Design/Logic Flaw

3.5CVSS4.9AI score0.00214EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2022/07/06 8:30 p.m.•9 views

CVE-2022-20768 Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability

4.9CVSS6.3AI score0.00214EPSS

Vulnrichment•added 2021/04/29 5:30 p.m.•7 views

CVE-2021-1476 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection Vulnerability

A vulnerability in the CLI of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system OS of an affected device. The vulnerability is due to...

6.7CVSS7.5AI score0.00042EPSS

Cisco•added 2019/06/19 4:0 p.m.•134 views

Cisco Meeting Server CLI Command Injection Vulnerability

A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insufficient input validation during the execution of a vulnerable CLI command. An attacker with...

6.7CVSS2.1AI score0.00145EPSS

Tenable Nessus•added 2019/06/07 12:0 a.m.•26 views

Cisco Nexus 3000 Series and 9000 Series Switches in NX-OS Mode CLI Command Software Image Signature Verification Vulnerability

According to its self-reported version, Cisco NX-OS Software isa ffected by a vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches could allow an authenticated, local attacker with administrator-level credential...

6.7CVSS6.5AI score0.00069EPSS

Exploits0References4

NVD•added 2019/05/15 11:29 p.m.•14 views

CVE-2019-1812

Prion•added 2019/05/15 11:29 p.m.•20 views

Design/Logic Flaw

Exploits0References2Affected Software1

Prion•added 2019/05/15 11:29 p.m.•17 views

Design/Logic Flaw

Exploits0References2Affected Software1

Cvelist•added 2019/05/15 10:20 p.m.•17 views

CVE-2019-1811 Cisco NX-OS CLI Command Software Image Signature Verification Vulnerabilities

6.7CVSS6.5AI score0.00066EPSS

CVE•added 2019/05/15 10:20 p.m.•70 views

CVE-2019-1812

Cisco NX-OS CLI Command Software Image Signature Verification (CVE-2019-1812) affects Cisco NX-OS Software, where the Image Signature Verification feature fails to properly verify digital signatures during CLI command execution. This can allow an authenticated, local attacker with administrator-l...

Exploits0References2Affected Software1

Vulnrichment•added 2019/05/15 10:20 p.m.•8 views

CVE-2019-1812 Cisco NX-OS CLI Command Software Image Signature Verification Vulnerabilities

6.7CVSS6.8AI score0.00066EPSS

Vulnrichment•added 2019/05/15 10:15 p.m.•6 views

CVE-2019-1808 Cisco MDS 9700 Series Multilayer Directors and Nexus 7000/7700 Series Switches Software Patch Signature Verification Vulnerability

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software patch on an affected device. The vulnerability is due to improper verification of digital signature...

6.7CVSS6.5AI score0.00082EPSS